Cybernews

Vercel hacked after fatal OAuth misstep: granting “Allow All” permissions

Vercel has been hacked and had some customer credentials compromised after an employee's single OAuth token, which had been ...
Security Boulevard

GitHub Actions Supply Chain Attack: Trivy Breach & Workflow

Breakdown of the Trivy GitHub Actions attack, including workflow misconfigurations, token theft, and supply chain exposure.

Vercel confirms breach as hackers claim to be selling stolen data

Cloud development platform Vercel has disclosed a security incident after threat actors claimed to have breached its systems ...
BeInCrypto

Vercel Security Breach Raises Concerns for Crypto Projects

Vercel's security breach may expose API keys and secrets for crypto projects deploying on its platform. Here's what to do.

Cloud deployment firm Vercel breached, advises secrets rotation

Cloud application deployment platform Vercel said it has suffered a security incident that involves unauthorised access to ...

Another Anthropic blunder? Did hackers get into its secret Mythos AI system—raising fresh fears about deeper security gaps and powerful cyberattack risks worldwide

Another Anthropic blunder? Reports say a small unauthorized group accessed the secret Mythos AI cybersecurity tool. That tool ...
Wired

Meta Pauses Work With Mercor After Data Breach Puts AI Industry Secrets at Risk

Meta has paused all its work with the data contracting firm Mercor while it investigates a major security breach that impacted the startup, two sources confirmed to WIRED. The pause is indefinite, the ...
Cult of Mac

Major data breach could expose Apple secrets

A major ransomware attack on Luxshare, one of Apple’s most critical manufacturing partners, allegedly exposed over 1TB of confidential data from the iPhone giant and other tech behemoths. Stolen ...

Bitwarden Access Intelligence Introduces Reporting for Risk Over Time to Help Organizations Measure and Reduce Credential Exposure

Bitwarden, the trusted leader in passkey, password, and secrets management, today announced a new reporting capability within ...
Wall Street Journal

Data Security Breaches

Mercor, which has worked with OpenAI, Anthropic and Meta, says it disputes the allegations. Flat budgets and a shaky economy will keep cybersecurity hiring in a holding pattern as firms invest in ...